Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 06 Jun 2000 10:09:58 -0500
From:      "Jeffrey J. Mountin" <jeff-ml@mountin.net>
To:        Peter van Dijk <petervd@vuurwerk.nl>, freebsd-security@FreeBSD.ORG
Subject:   Re: FreeBSDDEATH.c.txt (mmap dirty page no check bug)
Message-ID:  <4.3.2.20000606094636.00cd3ec0@207.227.119.2>
In-Reply-To: <20000606141000.H36228@vuurwerk.nl>
References:  <Pine.BSF.3.96.1000606222934.9047A-100000@aurora.scoop.co.nz> <Pine.BSF.4.21.0006021647100.10651-100000@epsilon.lucida.qc.ca> <Pine.BSF.3.96.1000606222934.9047A-100000@aurora.scoop.co.nz>

next in thread | previous in thread | raw e-mail | index | archive | help
At 02:10 PM 6/6/00 +0200, Peter van Dijk wrote:
>On Tue, Jun 06, 2000 at 10:38:37PM +1200, Andrew McNaughton wrote:
>[snip]
> >
> > Absence of /tmp is a pretty major oversight for any machine.  Putting it
> > on the root partition is doubly so.  If there's no sepsrate partition it
> > should at least be an alias to /var/tmp or something of the sort.
>
>To /usr/tmp, please, then.

Another bad default idea.

>/var/tmp is designed to be not cleaned out on reboots.

And for those that wish to mount /usr read only?

I agree with Peter about those installing for a server application knowing 
what they should do.  Any proposed changes to the default settings will be 
met with resistance by some.  Why not, they can't possibly work for 
everyone, so then someone else can complain and so and so forth.

A simple text stating "Depending on your application a separate /var and 
/tmp partition may be desirable."  Leave it up the person installing to 
actually change it and choose a size for it.  Those building a server they 
*should* have a clue as to what the system's needs will be.

Don't think we should even try to guess a difference between a server and 
workstation, since *what* the server is used for makes a hell of a lot of 
difference.  If it's only for DNS, then the current defaults should work 
quite well, but for a server doing mail and shell accounts... etc.

A no-win situation.


Jeff Mountin - jeff@mountin.net
Systems/Network Administrator
FreeBSD - the power to serve



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4.3.2.20000606094636.00cd3ec0>